CVE-2023-4873

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Sep 10, 2023
Updated: May 17, 2024

Summary

CVE-2023-4873 is a critical vulnerability affecting the Byzoro Smart S45F Multi-Service Secure Gateway Intelligent Management Platform up to version 20230906. This issue lies in an unknown function of the /importexport.php file, which can be exploited through manipulating the sql argument leading to OS command injection. The attack can be executed remotely, and the vulnerability has been disclosed to the public, increasing the risk of exploitation. VDB-239358 is the assigned identifier to this exposed security flaw.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share